CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-1036

Multiple buffer overflows in the AGate component for SAP Internet Transaction Server (ITS) allow remote attackers to execute arbitrary code via long (1) ~command, (2) ~runtimemode, or (3) ~session parameters, or (4) a long HTTP Content-Type header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.phenoelit.de/stuff/Phenoelit20c3.pd
https://exchange.xforce.ibmcloud.com/vulnerabilities/14186
http://www.phenoelit.de/stuff/Phenoelit20c3.pd
https://exchange.xforce.ibmcloud.com/vulnerabilities/14186

Products affected by CVE-2003-1036

Sap » Internet Transaction Server » Version: Any

cpe:2.3:a:sap:internet_transaction_server:*
Sap » Internet Transaction Server » Version: 6.20

cpe:2.3:a:sap:internet_transaction_server:6.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-1036

Products

Pricing

Contact Us